Client authentication results are translated into an instance of ServiceSecurityContext, which is attached to the message using a SecurityMessageProperty. This property can be used by higher layers to implement custom authorization logic.